How do I install CLI MCP Server?

Install CLI MCP Server with a single command: npx mdskills install MladenSU/cli-mcp-server. This downloads the skill files into your project and your AI agent picks them up automatically.

What platforms support CLI MCP Server?

CLI MCP Server works with Claude Code, Claude Desktop, Cursor, Vscode Copilot, Windsurf, Continue Dev, Gemini Cli, Amp, Roo Code, Goose. Skills use the open SKILL.md format which is compatible with any AI coding agent that reads markdown instructions.

← Back to MCP servers

CLI MCP Server

Name: CLI MCP Server: AI Agent Skill
Rating: 8 (1 reviews)
Author: MladenSU

Verified

MCP ServerIntermediate

A secure Model Context Protocol (MCP) server implementation for executing controlled command-line operations with comprehensive security features. 1. Overview 2. Features 3. Configuration 4. Available Tools - runcommand - showsecurityrules 5. Usage with Claude Desktop - Development/Unpublished Servers Configuration - Published Servers Configuration 6. Security Features 7. Error Handling 8. Develop

by @MladenSU0Updated 1 weeks ago

Add this skill

npx mdskills install MladenSU/cli-mcp-server

Fork & Edit

Skill Advisor8.0

Well-documented CLI execution server with comprehensive security features and clear configuration

+Implements robust security controls including whitelisting, timeouts, and path validation
+Provides clear configuration examples and comprehensive documentation
+Includes helpful security introspection tool to display current rules
-Grants broad permissions (network, write) that may exceed actual requirements

SKILL.md

Edit in Browser

1# CLI MCP Server
2 
3---
4 
5A secure Model Context Protocol (MCP) server implementation for executing controlled command-line operations with
6comprehensive security features.
7 
8![License](https://img.shields.io/badge/license-MIT-blue.svg)
9![Python Version](https://img.shields.io/badge/python-3.10%2B-blue)
10![MCP Protocol](https://img.shields.io/badge/MCP-Compatible-green)
11[![smithery badge](https://smithery.ai/badge/cli-mcp-server)](https://smithery.ai/protocol/cli-mcp-server)
12[![Python Tests](https://github.com/MladenSU/cli-mcp-server/actions/workflows/python-tests.yml/badge.svg)](https://github.com/MladenSU/cli-mcp-server/actions/workflows/python-tests.yml)
13 
14<a href="https://glama.ai/mcp/servers/q89277vzl1"><img width="380" height="200" src="https://glama.ai/mcp/servers/q89277vzl1/badge" /></a>
15 
16---
17 
18# Table of Contents
19 
201. [Overview](#overview)
212. [Features](#features)
223. [Configuration](#configuration)
234. [Available Tools](#available-tools)
24    - [run_command](#run_command)
25    - [show_security_rules](#show_security_rules)
265. [Usage with Claude Desktop](#usage-with-claude-desktop)
27    - [Development/Unpublished Servers Configuration](#developmentunpublished-servers-configuration)
28    - [Published Servers Configuration](#published-servers-configuration)
296. [Security Features](#security-features)
307. [Error Handling](#error-handling)
318. [Development](#development)
32    - [Prerequisites](#prerequisites)
33    - [Building and Publishing](#building-and-publishing)
34    - [Debugging](#debugging)
359. [License](#license)
36 
37---
38 
39## Overview
40 
41This MCP server enables secure command-line execution with robust security measures including command whitelisting, path
42validation, and execution controls. Perfect for providing controlled CLI access to LLM applications while maintaining security.
43 
44## Features
45 
46- 🔒 Secure command execution with strict validation
47- ⚙️ Configurable command and flag whitelisting with 'all' option
48- 🛡️ Path traversal prevention and validation
49- 🚫 Shell operator injection protection
50- ⏱️ Execution timeouts and length limits
51- 📝 Detailed error reporting
52- 🔄 Async operation support
53- 🎯 Working directory restriction and validation
54 
55## Configuration
56 
57Configure the server using environment variables:
58 
59| Variable             | Description                                          | Default            |
60|---------------------|------------------------------------------------------|-------------------|
61| `ALLOWED_DIR`       | Base directory for command execution (Required)      | None (Required)   |
62| `ALLOWED_COMMANDS`  | Comma-separated list of allowed commands or 'all'    | `ls,cat,pwd`      |
63| `ALLOWED_FLAGS`     | Comma-separated list of allowed flags or 'all'       | `-l,-a,--help`    |
64| `MAX_COMMAND_LENGTH`| Maximum command string length                        | `1024`            |
65| `COMMAND_TIMEOUT`   | Command execution timeout (seconds)                  | `30`              |
66| `ALLOW_SHELL_OPERATORS` | Allow shell operators (&&, \|\|, \|, >, etc.)    | `false`           |
67 
68Note: Setting `ALLOWED_COMMANDS` or `ALLOWED_FLAGS` to 'all' will allow any command or flag respectively.
69 
70## Installation
71 
72To install CLI MCP Server for Claude Desktop automatically via [Smithery](https://smithery.ai/protocol/cli-mcp-server):
73 
74```bash
75npx @smithery/cli install cli-mcp-server --client claude
76```
77 
78## Available Tools
79 
80### run_command
81 
82Executes whitelisted CLI commands within allowed directories.
83 
84**Input Schema:**
85```json
86{
87  "command": {
88    "type": "string",
89    "description": "Single command to execute (e.g., 'ls -l' or 'cat file.txt')"
90  }
91}
92```
93 
94**Security Notes:**
95- Shell operators (&&, |, >, >>) are not supported by default, but can be enabled with `ALLOW_SHELL_OPERATORS=true`
96- Commands must be whitelisted unless ALLOWED_COMMANDS='all'
97- Flags must be whitelisted unless ALLOWED_FLAGS='all'
98- All paths are validated to be within ALLOWED_DIR
99 
100### show_security_rules
101 
102Displays current security configuration and restrictions, including:
103- Working directory
104- Allowed commands
105- Allowed flags
106- Security limits (max command length and timeout)
107 
108## Usage with Claude Desktop
109 
110Add to your `~/Library/Application\ Support/Claude/claude_desktop_config.json`:
111 
112> Development/Unpublished Servers Configuration
113 
114```json
115{
116  "mcpServers": {
117    "cli-mcp-server": {
118      "command": "uv",
119      "args": [
120        "--directory",
121        "<path/to/the/repo>/cli-mcp-server",
122        "run",
123        "cli-mcp-server"
124      ],
125      "env": {
126        "ALLOWED_DIR": "</your/desired/dir>",
127        "ALLOWED_COMMANDS": "ls,cat,pwd,echo",
128        "ALLOWED_FLAGS": "-l,-a,--help,--version",
129        "MAX_COMMAND_LENGTH": "1024",
130        "COMMAND_TIMEOUT": "30",
131        "ALLOW_SHELL_OPERATORS": "false"
132      }
133    }
134  }
135}
136```
137 
138> Published Servers Configuration
139 
140```json
141{
142  "mcpServers": {
143    "cli-mcp-server": {
144      "command": "uvx",
145      "args": [
146        "cli-mcp-server"
147      ],
148      "env": {
149        "ALLOWED_DIR": "</your/desired/dir>",
150        "ALLOWED_COMMANDS": "ls,cat,pwd,echo",
151        "ALLOWED_FLAGS": "-l,-a,--help,--version",
152        "MAX_COMMAND_LENGTH": "1024",
153        "COMMAND_TIMEOUT": "30",
154        "ALLOW_SHELL_OPERATORS": "false"
155      }
156    }
157  }
158}
159```
160> In case it's not working or showing in the UI, clear your cache via `uv clean`.
161 
162## Security Features
163 
164- ✅ Command whitelist enforcement with 'all' option
165- ✅ Flag validation with 'all' option
166- ✅ Path traversal prevention and normalization
167- ✅ Shell operator blocking (with opt-in support via `ALLOW_SHELL_OPERATORS=true`)
168- ✅ Command length limits
169- ✅ Execution timeouts
170- ✅ Working directory restrictions
171- ✅ Symlink resolution and validation
172 
173## Error Handling
174 
175The server provides detailed error messages for:
176 
177- Security violations (CommandSecurityError)
178- Command timeouts (CommandTimeoutError)
179- Invalid command formats
180- Path security violations
181- Execution failures (CommandExecutionError)
182- General command errors (CommandError)
183 
184## Development
185 
186### Prerequisites
187 
188- Python 3.10+
189- MCP protocol library
190 
191### Building and Publishing
192 
193To prepare the package for distribution:
194 
1951. Sync dependencies and update lockfile:
196    ```bash
197    uv sync
198    ```
199 
2002. Build package distributions:
201    ```bash
202    uv build
203    ```
204 
205   > This will create source and wheel distributions in the `dist/` directory.
206 
2073. Publish to PyPI:
208   ```bash
209   uv publish --token {{YOUR_PYPI_API_TOKEN}}
210   ```
211 
212### Debugging
213 
214Since MCP servers run over stdio, debugging can be challenging. For the best debugging
215experience, we strongly recommend using the [MCP Inspector](https://github.com/modelcontextprotocol/inspector).
216 
217You can launch the MCP Inspector via [`npm`](https://docs.npmjs.com/downloading-and-installing-node-js-and-npm) with
218this command:
219 
220```bash
221npx @modelcontextprotocol/inspector uv --directory {{your source code local directory}}/cli-mcp-server run cli-mcp-server
222```
223 
224Upon launching, the Inspector will display a URL that you can access in your browser to begin debugging.
225 
226## License
227 
228This project is licensed under the MIT License - see the [LICENSE](LICENSE) file for details.
229 
230---
231 
232For more information or support, please open an issue on the project repository.

Full transparency — inspect the skill content before installing.